OpenTDF: A toolkit for zero trust, data-centric security
OpenTDF is an open source system for implementing data centric security. It provides the basic services required to enable the definition, application, and enforcement of attribute based policies using the Trust Data Format (TDF). TDF is an open standard that enables you to cryptographically bind attribute based access control (ABAC) policy to a data object so that the policy travels with the data wherever it goes.
OpenTDF builds upon a decade of experience at Virtru protecting data objects at scale using the Trusted Data Format for organizations of all sizes and across all industries.
Zero Trust and OpenTDF
Today's cybersecurity landscape is increasingly adopting and requiring Zero Trust models and frameworks. Zero Trust operates on the principle of "never trust, always verify," ensuring that every access request is authenticated, authorized, and encrypted, regardless of its origin. OpenTDF implements this model by providing an open-source framework, specification, and set of services that prioritizes the protection and integrity of data at every stage.
By integrating OpenTDF’s data security features with a Zero Trust architecture, organizations can enforce strict access controls, ensure data is continuously monitored, and maintain comprehensive visibility into data interactions. This synergy not only minimizes the risk of data breaches but also fosters a secure environment where data can be shared and utilized with confidence. Together, Zero Trust and OpenTDF empower businesses to uphold the highest standards of data security in an interconnected world.
Project Overview and Current State
In 2023, the OpenTDF team undertook a significant re-architecture of the OpenTDF platform to enhance its extensibility and interoperability, responding to the evolving needs of our diverse user base and the dynamic cybersecurity landscape. See our Github Organization Page to navigate the new repositories.
This comprehensive overhaul involved simplifying core service components, adopting standardized policy schemas, and improving platform APIs and SDKs both in developer experience and in capability. By focusing on extensibility, we have enabled developers to customize and extend OpenTDF’s functionalities to suit specific use cases, fostering innovation and adaptability. As we continue to advance, our focus remains on empowering the community with a secure, adaptable, and interoperable platform that meets the highest standards of data protection and fosters collaborative innovation.
Through the sponsorship of Virtru and its partners, the OpenTDF project has been meeting the needs of customers across industries and use cases. Check out Virtru Data Security Platform for more.
OpenTDF Examples
Ideas for leveraging OpenTDF in your own applications
Share Your Feedback
Virtru, the sponsor of the OpenTDF developer community, would love to hear from you!
We're developers, too, and as we mature the project, we're curious what you're building, and what kind of problems you may be encountering or are trying to solve.
You can provide anonymous feedback (name, email, and company are not required fields on this form), or share your contact information for access to curated resources, updates, and if you request a response.